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The MAILING DATE of this communication appears on the cover sheet with the correspondence address- 
All claims being allowable, PROSECUTION ON THE MERITS IS (OR REMAINS) CLOSED in this application. If not included 
herewith (or previously mailed), a Notice of Allowance (PTOL-85) or other appropriate communication will be mailed in due course, THIS 
NOTICE OF ALLOWABILITY IS NOT A GRANT OF PATENT RIGHTS. This application is subject to withdrawal from issue at the initiative 
of the Office or upon petition by the applicant. See 37 CFR 1.313 and MPEP 1308. 

1. This communication is responsive to 7/12/07 . 

2. The allowed claim(s) is/are 1.14.16.18 and 25 . 

3. □ Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or (f). 

a) □ All b) □ Some* c) □ None of the: 

1. □ Certified copies of the priority documents have been received. 

2. □ Certified copies of the priority documents have been received in Application No. . 

3. □ Copies of the certified copies of the priority documents have been received in this national stage application from the 

International Bureau (PCT Rule 17.2(a)). 
* Certified copies not received: . 

Applicant has THREE MONTHS FROM THE "MAILING DATE" of this communication to file a reply complying with the requirements 
noted below. Failure to timely comply will result in ABANDONMENT of this application. 
THIS THREE-MONTH PERIOD IS NOT EXTENDABLE. 

4. □ A SUBSTITUTE OATH OR DECLARATION must be submitted. Note the attached EXAMINER'S AMENDMENT or NOTICE OF 

INFORMAL PATENT APPLICATION (PTO-152) which gives reason(s) why the oath or declaration is deficient. 

5. □ CORRECTED DRAWINGS ( as "replacement sheets") must be submitted, 

(a) □ including changes required by the Notice of Draftsperson's Patent Drawing Review ( PTO-948) attached 

1) □ hereto or 2) □ to Paper No./Mail Date . 

(b) □ including changes required by the attached Examiner's Amendment / Comment or in the Office action of 

Paper No./Mail Date . 

Identifying indicia such as the application number (see 37 CFR 1.84(c)) should be written on the drawings in the front (not the back) of 
each sheet. Replacement sheet(s) should be labeled as such in the header according to 37 CFR 1.121(d). 

6. □ DEPOSIT OF and/or INFORMATION about the deposit of BIOLOGICAL MATERIAL must be submitted. Note the 

attached Examiner's comment regarding REQUIREMENT FOR THE DEPOSIT OF BIOLOGICAL MATERIAL. 
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DETAILED ACTION 



1. Claims 1, H 16, 18, and 25 are pending. 

2. Applicant's amendments and arguments filed 12 July 2007 have been fully 
considered and they are deemed to be persuasive. 



3. An examiner's amendment to the record appears below. Should the changes 
and/or additions be unacceptable to applicant, an amendment may be filed as provided 
by 37 CFR 1.312. To ensure consideration of such an amendment, it MUST be 
submitted no later than the payment of the issue fee. 

Authorization for this examiner's amendment was given in a telephone interview 
with Joslyn Barritt (Reg. 56,296) on 19 September 2007. 

The application has been amended as follows: 

1 . (Currently Amended) A method for processing calls to a directory access 
server, comprising: 

intercepting a call from a client computer to a directory access server, the call 
consisting of one of a request to add data to a directory associated with the directory 
access server, a request to modify data in the directory, and a request to delete data 
from the directory, the call further including at least one attribute associated with data 
having a data content and a data structure; 



EXAMINER'S AMENDMENT 
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evaluating the attribute according to a first rule governing data content that may 
is permissible to be forwarded to the directory access server and a second rule 
governing data structure that may is permissible to be forwarded to the directory access 
server; 

the first and second rules including a data addition rule when the call includes a 
request to add data to the directory: 

the first and second rules including a data modification rule when the call 
includes a reguest to modify data in the directory; 

the first and second rules including, a data deletion rule when the call includes a 
reguest to delete data from the directory; 

determining whether the attribute complies with the first rule and the second rule; 

forwarding the call to the directory access server if the attribute complies with the 
first rule and the second rule; and 

rejecting the call to the directory access server and forwarding an error message 
to a source of the call if the call attribute does not comply with the first rule and the 
second rule, 

said steps of evaluating the attribute and determining whether the attribute 
complies with the first rule and second rule being performed by an attribute rule enforcer 
interposed between the directory access server and the client computer. 



2-1 1 . (Cancelled) 



Application/Control Number: 09/921,015 
Art Unit: 2165 



Page 4 



12. (Cancelled) 

13. (Cancelled) 

14. (Currently amended) An attribute rule enforcer, comprising: 

a rule validator and a transaction monitor, the rule validator and transaction 
monitor being interposed between a client computer and a directory access server; 

the transaction monitor being capable of intercepting a call from' a client 
computer to a directory access server, diverting the intercepted call to the rule validator 
if the call includes one of a request to add data to a directory associated with the 
directory access server, a request to modify data in the directory, and a request to 
delete data from the directory, and being further capable of forwarding the intercepted 
call to the directory access server if the call does not include one of a request to add 
data to the directory, a request to modify data in the directory, and a request to delete 
data from the directory; and 

the rule validator being capable of determining whether an attribute of a call 
complies with a first rule governing content of data that may is permissible to be 
forwarded to the directory access server and a second rule governing structure of data 
that may is permissible to be forwarded to the directory access server, the first and 
second rules including a data addition rule when the call includes a request to add data 
to the directory, the first and second rules including a data modification rule when the 
call includes a reguest to modify data in a directory, and the first and second rules 
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including a data deletion rule when the call includes a request to delete data from the 
directory; 

the rule validator further being capable of forwarding the call to the directory 
access server if the attribute complies with one of the first rule and the second rule and 
being further capable of rejecting the call to the directory access server and returning an 
error message to a source of the call if the attribute does not comply with the first rule 
and the second rule. 

15. (Cancelled) 

16. (Previously presented) The attribute rule enforcer recited in claim 14, wherein 
the rule validator is capable of forwarding the call to the transaction monitor, and the 
transaction monitor is capable of relaying the call to a directory. 

17. (Cancelled) 

18. (Previously presented) The attribute rule enforcer recited in claim 14, wherein 
the rule validator is capable of forwarding the call to the directory access server. 

19-24. (Cancelled) 

25. (Currently amended) A directory network including: 
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one or more client computers; 

a directory access server, said directory access server being capable of 
controlling access to a directory associated with the directory access server, and 

an attribute rule enforcer , said attribute rule enforcer comprising: 

a rule validator and a transaction monitor the rule validator and transaction 

monitor being interposed between a client computer and a directory access server: 

the transaction monitor being capable of intercepting a call from a client 

computer to a directory access server, diverting the intercepted call to the rule validator 
if the call includes one of a reguest to add data to a directory associated with the 
directory access server a reguest to modify data in the directory, and a reguest to 
delete data from the directory, and being further capable of forwarding the intercepted 
call to the directory access server if the call does not include one of a reguest to add 
data to the directory, a reguest to modify data in the directory, and a reguest to delete 
data from the directory: and 

the rule validator being capable of determining whether an attribute of the call 

complies with the first rule governing content of data that is permissible to be forwarded 
to the directory access server and a second rule governing structure of data that is 
permissible to be forwarded to the directory access server, the first and second rules 
including a data addition rule when the call includes a reguest to add data to the 
directory, the first and second rules including a data modification rule when the call 
includes a reguest to modify data in the directory, and the first and second rules 
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including a data deletion rule when the call includes a request to delete data from the 
directory; 

the rule validator being further capable of forwarding the call to the directory 

access server if the attribute complies with one of the first rule and the second rule and 
being further capable of rejecting the call to the directory access server and returning an 
error message to a source of the call if the attribute does not comply with the first and 
the second rule: 

as recit e d i n c l aim 14 , the attribute rule enforcer being arranged in the directory 
network so as to intercept calls from the one or more client computers to the directory 
access server, said attribute rule enforcer being interposed between the one or more 
client computers and the directory access server. 

26. (Cancelled) 

Allowable Subject Matter 

4. Claims 1, 14, 16, 18, and 25 have been renumbered as claims 1-5 and are 
allowed over the prior art of record. 

Reason for Allowance 

The following is an examiner's statement for reasons for allowance: The closest prior art 
of record (Ambrosini et al., U.S. Patent No. 6,609,121) does not disclose, teach, or 
suggest the claimed limitations of (in combination with all other features in the claim), A 
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method for processing calls to a directory access server, comprising: intercepting a call 
from a client computer to a directory access server, the call consisting of one of a 
request to add data to a directory associated with the directory access server, a request 
to modify data in the directory, and a request to delete data from the directory, the call 
further including at least one attribute associated with data having a data content and a 
data structure; evaluating the attribute according to a first rule governing data content 
that is permissible to be forwarded to the directory access server and a second rule 
governing data structure that is permissible to be forwarded to the directory access 
server; the first and second rules including a data addition rule when the call includes a 
request to add data to the directory; the first and second rules including a data 
modification rule when the call includes a request to modify data in the directory; the 
first and second rules including, a data deletion rule when the call includes a request to 
delete data from the directory; determining whether the attribute complies with the first 
rule and the second rule; forwarding the call to the directory access server if the 
attribute complies with the first rule and the second rule; and rejecting the call to the 
directory access server and forwarding an error message to a source of the call if the 
call attribute does not comply with the first rule and the second rule, said steps of 
evaluating the attribute and determining whether the attribute complies with the first rule 
and second rule being performed by an attribute rule enforcer interposed between the 
directory access server and the client computer. 
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The dependent claims, being further limiting to the independent claims, definite 
and enabled by the specification are also allowed. 

Any comment considered necessary by applicant must be submitted no later than the 
payment of the issue fee and, to avoid processing delays, should preferably accompany 
the issue fee. Such submissions should be clearly labeled "Comments on Statements of 
Reasons for Allowance." 

Contact Information 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Farhan M. Syed whose telephone number is 571-272- 
7191. The examiner can normally be reached on 8:30AM-5:00 PM. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Jeffrey Gaffin can be reached on 571-272-4146. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 
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